Scenario:
As part of the security team you are always looking for ways to improve security within the company. You want to get rid of all the local vty/console logins within your network so you decide to implement some AAA security.
Goal:
- All IP addresses have been configured for you, look at the topology picture for the IP addresses.
- OSPF has been preconfigured for full connectivity.
- Configure router Mirror so ICMP and TCP traffic from network 1.1.1.0 /24 is allowed.
- Configure router Mirror with an inbound access-list on the FastEthernet1/0 interface so return traffic is allowed. You are not allowed to create specific entries.
Topology:
Video Solution:
Configuration Files
You need to register to download the GNS3 topology file. (Registration is free!)Once you are logged in you will find the configuration files right here.
![Opt In Image](https://gns3vault.com/wp-content/uploads/2014/05/how-to-master-ccnp-3-pack-3d-book.png)
Do you want your CCNA or CCNP Certificate?
The How to Master series helps you to understand complex topics like spanning-tree, VLANs, trunks, OSPF, EIGRP, BGP and more.
Written by René Molenaar - CCIE #41726
Hey Am I missing something here ? What about the labs that don’t have a video ? I mean , is there a text file for the solution or something ? Great work Rene 😀
It’s here now, just uploaded it!
what’s the diff bet CBAC and reflexive access list?